This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft File: PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft (raw, json) Hash identifier: 6OXfUo+ta42890Qg7U6Glh3ZwL4yo1FDG/0eO0alsBI= Subject key identifier: 0A:DF:27:77:C0:B7:19:CB:5E:3F:3F:46:F7:B0:DC:11:3A:55:0C:75 Authority key identifier: 3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52 Certificate issuer: /CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952 Certificate serial: 019AF5AE6C49B33B834D58CBDE6A4675513E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft Manifest number: 0643 Signing time: Sat 06 Dec 2025 22:00:40 +0000 Manifest this update: Sat 06 Dec 2025 22:00:40 +0000 Manifest next update: Sun 07 Dec 2025 22:00:40 +0000 Files and hashes: 1: PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl (hash: 4R9pxrDkldVq0V6VkvV3fFDx6k9NjpfJu6f7aEy9KNA=) 2: cNQzFblAKvFr8hGK7lwE2E-QroQ.roa (hash: 6L0JpdKsg5wIV7DiGvLclmuCfLf4+RgtvQ0jAlVXODk=) 3: sq8t5TnYeFbLwzKDRurrhu8TSwI.roa (hash: BEQOlbgnZNiMmu4zSM6xloAN2ehefN/KrPp5K3vJnWw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:6c:49:b3:3b:83:4d:58:cb:de:6a:46:75:51:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952 Validity Not Before: Dec 6 22:00:40 2025 GMT Not After : Dec 7 22:00:40 2025 GMT Subject: CN=0adf2777c0b719cb5e3f3f46f7b0dc113a550c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2a:b1:14:f9:b8:c5:a3:47:4e:30:a8:3d:15: f6:aa:fb:fa:03:a5:c5:00:6c:28:2b:a5:87:19:c8: 95:0c:3f:61:80:cc:94:47:48:cd:37:4d:7d:08:78: a0:2a:b4:6b:ba:46:d9:c7:28:bc:8b:4c:4e:32:1a: 47:67:03:0e:0c:27:2b:d6:92:cc:34:69:a6:80:0c: e1:3a:ac:d5:32:c4:38:cd:d7:f1:bd:37:b8:96:1e: 2e:4e:5f:3a:a5:99:8d:26:09:7d:7f:f5:1e:1e:f7: 07:bd:09:db:6e:8f:21:f1:b4:e9:eb:9f:8f:6a:8a: 2f:08:63:c7:30:c9:42:52:ca:99:69:01:1a:0c:b0: d8:b7:79:0d:85:cd:47:5d:46:78:f9:7f:2a:ae:5a: 4a:7e:03:6e:29:52:ee:f8:37:37:58:8d:c9:8d:04: 58:87:55:f0:dc:8c:3a:6f:87:9d:e5:a3:ca:65:d0: b8:cc:ea:50:89:e1:a2:6d:3e:24:50:1c:3d:d7:79: 35:99:ca:b0:0e:f8:b0:e0:2a:d5:45:da:b9:b3:13: cc:22:56:03:ff:04:af:2f:0b:a5:09:d3:59:f8:fc: d3:44:a2:3c:3f:6a:1f:1f:f2:62:26:2c:2d:3a:07: 70:b8:34:d2:7d:75:e6:64:bb:f6:4a:39:5d:20:4a: 25:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:DF:27:77:C0:B7:19:CB:5E:3F:3F:46:F7:B0:DC:11:3A:55:0C:75 X509v3 Authority Key Identifier: keyid:3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:05:9e:3f:3d:70:d5:e3:24:97:45:dd:f9:90:bc:6c:10:11: c0:45:c4:d9:ac:56:32:de:fb:b5:94:aa:60:a2:ef:af:58:d8: 85:74:b1:af:6c:3b:6b:93:b7:da:35:68:1e:0b:b2:cd:c9:8b: 39:e8:58:a1:a3:74:98:d0:a8:60:06:94:58:e2:f2:aa:9d:e9: ea:97:d2:93:91:9f:1f:36:1d:e4:16:99:e4:1f:ad:e5:ba:82: 68:71:13:e9:c0:45:e4:61:05:64:8c:d7:e5:18:c1:1f:70:bf: 6d:d6:9a:06:f9:10:cd:e9:61:14:da:41:89:ca:0d:af:e1:c5: d8:fc:7b:54:9a:48:74:0d:98:ca:81:f6:0a:e8:5e:71:38:ce: be:94:30:db:fd:5b:4b:63:1f:03:d7:5a:67:c1:d1:e2:e9:62: ea:51:74:ad:5c:6c:73:04:b6:a6:86:14:8f:b9:da:17:84:35: d5:86:9a:eb:47:74:6b:0a:de:96:9d:53:b5:22:ce:c7:96:5e: a2:6c:68:9e:09:9b:39:b3:a8:b2:10:67:20:cd:6a:e9:20:9b: 25:51:8f:4f:03:22:6e:68:d7:b4:bb:c6:44:fe:1e:dc:18:cf: ec:1b:7f:fa:8d:79:44:8d:c1:bb:b4:e4:fd:55:a6:09:03:0a: 34:8e:ba:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rmxJszuDTVjL3mpGdVE+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMjM3NThkZmI2ZjFkNDNkY2Q2NGQwZjBhYjI3ZWY3MTUx MzU5NTIwHhcNMjUxMjA2MjIwMDQwWhcNMjUxMjA3MjIwMDQwWjAzMTEwLwYDVQQD EygwYWRmMjc3N2MwYjcxOWNiNWUzZjNmNDZmN2IwZGMxMTNhNTUwYzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiqxFPm4xaNHTjCoPRX2qvv6A6XF AGwoK6WHGciVDD9hgMyUR0jNN019CHigKrRrukbZxyi8i0xOMhpHZwMODCcr1pLM NGmmgAzhOqzVMsQ4zdfxvTe4lh4uTl86pZmNJgl9f/UeHvcHvQnbbo8h8bTp65+P aoovCGPHMMlCUsqZaQEaDLDYt3kNhc1HXUZ4+X8qrlpKfgNuKVLu+Dc3WI3JjQRY h1Xw3Iw6b4ed5aPKZdC4zOpQieGibT4kUBw913k1mcqwDviw4CrVRdq5sxPMIlYD /wSvLwulCdNZ+PzTRKI8P2ofH/JiJiwtOgdwuDTSfXXmZLv2SjldIEolMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFArfJ3fAtxnLXj8/Rvew3BE6VQx1MB8GA1UdIwQY MBaAFD0jdY37bx1D3NZNDwqyfvcVE1lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2Ut Nzk5MGU4N2JiZDVmLzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2UtNzk5MGU4N2JiZDVm LzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKQWePz1w 1eMkl0Xd+ZC8bBARwEXE2axWMt77tZSqYKLvr1jYhXSxr2w7a5O32jVoHguyzcmL OehYoaN0mNCoYAaUWOLyqp3p6pfSk5GfHzYd5BaZ5B+t5bqCaHET6cBF5GEFZIzX 5RjBH3C/bdaaBvkQzelhFNpBicoNr+HF2Px7VJpIdA2YyoH2CuhecTjOvpQw2/1b S2MfA9daZ8HR4uli6lF0rVxscwS2poYUj7naF4Q11Yaa60d0awrelp1TtSLOx5Ze omxongmbObOoshBnIM1q6SCbJVGPTwMibmjXtLvGRP4e3BjP7Bt/+o15RI3Bu7Tk /VWmCQMKNI66Qw== -----END CERTIFICATE-----Generated at Sun Dec 7 07:44:25 2025 by rpki-client